$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: /k0D54z288jF/cKXudKV74WXBRxY9iTuC4wUmkega6E= Subject key identifier: 97:E8:AE:23:DD:52:BD:3B:13:AC:8D:6B:50:AC:FB:E4:04:8C:1F:EF Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 0170 Signing time: Mon 21 Jul 2025 03:56:52 +0000 Manifest this update: Mon 21 Jul 2025 03:56:52 +0000 Manifest next update: Mon 28 Jul 2025 03:56:52 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: NSSMKmyChde3hA3/5b+OtvZctJl0Z7dv6Mxchy8iZ84=) 2: 838096CA3BD311EE84056461C4F9AE02.roa (hash: MRW+pxq2rIQWqz0eewlHDxgHTLGzIYysThVYJrp2BDc=) 3: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: Fv5yzaRaYXm7EcaxJ9d0RT5up4myTdlO4UPvIXp3L88=) 4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: mGJXgF/PKI9FEq/cPxsdqAyVl2gi74HVL2n1gwNWhDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Jul 21 03:56:52 2025 GMT Not After : Jul 28 03:56:52 2025 GMT Subject: CN=687dba84-678b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:77:e0:bb:67:8d:f0:52:c0:8f:3d:0b:14:f2: ae:a6:d1:1a:84:2e:80:2a:52:6b:a8:dc:46:be:d2: f5:22:45:cb:0c:49:8c:bd:f2:50:c3:6c:61:14:a5: 59:8d:b9:b9:a6:6b:f0:89:6c:cf:0f:7c:77:19:e1: ab:12:22:fe:3a:65:75:42:12:fd:66:27:3d:33:1e: 7c:ec:76:3a:3f:2c:0f:05:ac:4c:47:3d:d9:70:d3: 46:f7:e1:35:0c:5a:43:36:8a:15:ae:6c:c3:3b:fe: 9d:4e:d6:51:ef:eb:e9:07:20:5f:a0:7d:5a:8f:84: c6:a6:d0:bf:a5:74:b1:7d:1d:7d:0b:ac:e1:bd:97: 4d:7b:f3:56:bb:23:f0:80:6d:3c:83:dc:e3:ce:82: 43:34:9a:36:cd:33:13:27:0f:48:19:43:16:7b:5a: ed:5f:91:5c:0a:b5:fb:b1:a0:09:81:11:26:f0:c6: f4:a5:eb:36:84:f4:3e:80:3e:86:8d:cd:5f:87:18: 3e:a1:85:f8:92:c2:12:15:c8:c3:0b:42:8e:21:5f: 92:19:71:19:55:fa:b4:c2:70:10:75:0c:20:13:90: 35:74:3c:9a:59:63:88:e2:1b:f2:32:29:ae:0e:46: 2e:4a:ab:b1:9a:72:28:39:a1:50:8c:ce:65:01:92: 0a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E8:AE:23:DD:52:BD:3B:13:AC:8D:6B:50:AC:FB:E4:04:8C:1F:EF X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d6:36:20:12:e4:18:de:b4:2a:12:53:37:28:77:f5:65:77: 6a:cb:1a:56:1c:7a:f3:24:da:d6:27:af:16:20:bc:44:60:a1: be:29:89:ba:ed:41:e5:c9:28:a3:b7:77:17:52:37:92:a1:84: 59:6e:a2:06:11:75:bd:34:fc:5c:e9:15:ee:08:35:cd:fc:48: 3d:c4:59:78:a4:e8:af:89:f3:c1:6b:17:a8:f3:96:6b:fc:72: b6:71:9e:79:e6:a2:96:ba:f1:d3:71:7a:eb:f3:e1:6b:2a:f5: 73:1e:2a:a6:cc:47:32:3a:d6:be:31:73:43:0f:0d:18:bd:95: cd:53:ab:cc:d3:64:28:1b:5a:b2:8f:a6:04:b2:0b:55:ea:9e: 47:49:d0:18:07:1a:80:2d:cd:c7:85:75:45:be:f4:8f:d3:ec: c6:e5:01:28:82:ba:1f:2a:ed:7b:1c:63:9c:2a:72:21:ee:94: 7e:9c:4a:a2:48:f3:1f:d6:27:e0:67:67:6e:3e:11:fd:b5:f5: bb:61:04:fc:8b:9a:38:3e:04:69:bb:fd:26:4c:62:a5:8e:4d: 2e:dd:6c:7a:12:da:ce:ec:47:d0:f8:c1:d8:bc:70:90:cf:19: eb:c6:76:c7:cb:a0:e4:78:03:70:97:95:a8:21:ba:3a:18:fe: d7:6b:c0:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjUwNzIxMDM1NjUyWhcNMjUwNzI4MDM1NjUyWjAYMRYwFAYD VQQDEw02ODdkYmE4NC02NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHfgu2eN8FLAjz0LFPKuptEahC6AKlJrqNxGvtL1IkXLDEmMvfJQw2xhFKVZ jbm5pmvwiWzPD3x3GeGrEiL+OmV1QhL9Zic9Mx587HY6PywPBaxMRz3ZcNNG9+E1 DFpDNooVrmzDO/6dTtZR7+vpByBfoH1aj4TGptC/pXSxfR19C6zhvZdNe/NWuyPw gG08g9zjzoJDNJo2zTMTJw9IGUMWe1rtX5FcCrX7saAJgREm8Mb0pes2hPQ+gD6G jc1fhxg+oYX4ksISFcjDC0KOIV+SGXEZVfq0wnAQdQwgE5A1dDyaWWOI4hvyMimu DkYuSquxmnIoOaFQjM5lAZIKDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJforiPd Ur07E6yNa1Cs++QEjB/vMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+1jYgEuQY3rQqElM3KHf1ZXdqyxpWHHrzJNrWJ68WILxEYKG+KYm6 7UHlySijt3cXUjeSoYRZbqIGEXW9NPxc6RXuCDXN/Eg9xFl4pOivifPBaxeo85Zr /HK2cZ555qKWuvHTcXrr8+FrKvVzHiqmzEcyOta+MXNDDw0YvZXNU6vM02QoG1qy j6YEsgtV6p5HSdAYBxqALc3HhXVFvvSP0+zG5QEogrofKu17HGOcKnIh7pR+nEqi SPMf1ifgZ2duPhH9tfW7YQT8i5o4PgRpu/0mTGKljk0u3Wx6EtrO7EfQ+MHYvHCQ zxnrxnbHy6DkeANwl5WoIbo6GP7Xa8AT -----END CERTIFICATE-----Generated at Wed Jul 23 02:22:50 2025 by rpki-client